docs: complete Phase 0 architecture — spec updates, review fixes, and link portability
Update four existing specs (overview, server, napi-and-pubsub, call-protocol) to reflect Phase 0 decisions: three-layer model, IdentityProvider, ForwardingPolicy, OperationEnv, static/dynamic config split. Review all 9 Phase 0a ADRs (026-034) for consistency. Fix 4 critical issues from architecture review: missing OQ-SVC-05 in open-questions.md, deprecated hub terminology, undefined AuthService and noq terms. Replace inline OQ text with cross-references per format rules. Add ConfigServiceImpl definition to configuration.md. Port absolute workspace paths to project-relative links by copying referenced docs (feasibility, certbot, fail2ban, event_source_types) into docs/research/.
This commit is contained in:
91
docs/research/event-sourcing/event_source_types.md
Normal file
91
docs/research/event-sourcing/event_source_types.md
Normal file
@@ -0,0 +1,91 @@
|
||||
|
||||
|
||||
|
||||
Here is an article tailored specifically to untangle these concepts. It is structured not just as a conceptual guide, but as a **diagnostic tool**—perfect for feeding into an AI coding CLI to sniff out architectural smells and "spaghetti concepts" in a codebase.
|
||||
|
||||
***
|
||||
|
||||
# Deconstructing Event-Driven Architecture: Untangling "Spaghetti Concepts"
|
||||
|
||||
In modern software architecture, the term "Event" has fallen victim to *semantic diffusion*—a concept popularized by Martin Fowler where a term becomes so widely used that it loses its original, specific meaning. When developers use the same word to describe state persistence, data distribution, and asynchronous notifications, the result is "Spaghetti Concepts."
|
||||
|
||||
Just like spaghetti code, spaghetti concepts lead to tight coupling, brittle systems, and unpredictable side effects. To fix an Event-Driven Architecture (EDA), we must draw hard boundaries around what an "event" is actually doing in any given context.
|
||||
|
||||
This guide breaks down the distinct types of events, their proper use cases, and the structural anti-patterns (Conflation Points) that occur when they are mixed up.
|
||||
|
||||
---
|
||||
|
||||
## 1. Event Sourcing (State Persistence)
|
||||
**The Concept:** Event Sourcing is a method of persisting state. Instead of saving the *current* state of an entity (e.g., `Quantity: 27`) in a database row, you save the *history of facts* that led to that state (e.g., `Received 30`, `Shipped 5`, `Adjusted +2`). The current state is derived by replaying these facts.
|
||||
|
||||
**The Golden Rule:** Event Sourcing is an **internal implementation detail** of a specific service or Aggregate. It is highly specific to the domain logic.
|
||||
|
||||
**How to Identify It:**
|
||||
* Uses a specialized stream database (like EventStoreDB).
|
||||
* Events are named in the past tense representing highly specific domain actions (`InventoryAdjusted`, `OrderPlaced`).
|
||||
* The system reads a stream of these events to reconstruct an object in memory before applying new business rules.
|
||||
|
||||
### 🚨 Conflation Point: Leaking the Event Store (The Database Reach-In)
|
||||
**The Smell:** Service B connects directly to Service A’s event store to read its events and react to them.
|
||||
**Why it’s bad:** Because Event Sourcing events are internal state, exposing them externally completely shatters Service A's encapsulation. If Service A refactors how it calculates inventory, Service B breaks.
|
||||
**The Fix:** Service A should project its internal Event Sourcing events into generalized **Integration Events** (see below) and publish those to a message broker (like RabbitMQ or Kafka) for Service B to consume.
|
||||
|
||||
---
|
||||
|
||||
## 2. Event-Carried State Transfer (Data Distribution)
|
||||
**The Concept:** Also known as "Fat Events," this pattern is used to distribute data across services to avoid synchronous API calls (temporal coupling). If Service B needs to know about a Product's price to calculate a shopping cart total, Service A publishes an event containing the *entire* current state of that product. Service B listens to this event and builds a local, read-only cache (a projection).
|
||||
|
||||
**The Golden Rule:** These events exist to answer the question, *"What does the data look like now?"* without requiring a synchronous HTTP callback.
|
||||
|
||||
**How to Identify It:**
|
||||
* Events often have generic CRUD-like names (`ProductUpdated`, `CustomerCreated`).
|
||||
* Payloads are "fat"—they contain a lot of data (ID, Name, Price, Category, etc.).
|
||||
* Often implemented using Change Data Capture (CDC) tools like Debezium reading from a primary database and publishing to Kafka.
|
||||
|
||||
### 🚨 Conflation Point: Event Sourcing vs. State Transfer
|
||||
**The Smell:** Using a state transfer tool (like Debezium publishing `RowUpdated` events) as a makeshift Event Sourcing log to derive business logic.
|
||||
**Why it’s bad:** A database row update doesn't tell you *why* the data changed. Was a user's address updated because they moved, or because there was a typo? Business intent is lost.
|
||||
**The Fix:** Keep CDC and state transfer events strictly for updating local read-caches in downstream services. Do not use them to drive complex business workflows that rely on "intent."
|
||||
|
||||
---
|
||||
|
||||
## 3. Notification Events (Behavioral Triggers)
|
||||
**The Concept:** Also known as "Thin Events," these are lean messages broadcasted to notify the system that a business milestone has occurred. They usually contain minimal data—often just an Entity ID and an action.
|
||||
|
||||
**The Golden Rule:** They act as an asynchronous "tap on the shoulder" to tell downstream services to trigger their own workflows (Choreography).
|
||||
|
||||
**How to Identify It:**
|
||||
* Payloads are "thin" (e.g., `{ "Event": "OrderShipped", "OrderId": "123" }`).
|
||||
* Used heavily in integrations (e.g., triggering an email via AWS SES, or notifying a shipping warehouse).
|
||||
|
||||
### 🚨 Conflation Point: The Synchronous Callback Trap (Boomerang Coupling)
|
||||
**The Smell:** Service A publishes a thin `OrderPlaced` event. Service B receives it, but to do its job, it must immediately make a synchronous HTTP REST call back to Service A to fetch the order details.
|
||||
**Why it’s bad:** If Service A goes down, Service B fails. You have successfully implemented Event-Driven Architecture, but kept the exact synchronous temporal coupling you were trying to eliminate. Furthermore, a flood of events can cause a DDoS attack on your own service.
|
||||
**The Fix:** If downstream services *always* need the data to process the event, upgrade the Notification Event to an Event-Carried State Transfer ("Fat Event") by including the required data in the payload.
|
||||
|
||||
---
|
||||
|
||||
## 4. Domain Events vs. Integration Events (The Boundary Rule)
|
||||
*Own Insight / DDD Integration*
|
||||
|
||||
A massive source of spaghetti concepts is failing to differentiate between events meant for *inside* the house and events meant for *outside* the house.
|
||||
|
||||
* **Domain Events:** Fired and consumed *within the same service boundary*. They can contain rich, complex, internal domain models because the producer and consumer share the same codebase/ubiquitous language.
|
||||
* **Integration Events:** Fired *across service boundaries*. They should be simple, generalized, and stripped of internal jargon or complex objects.
|
||||
|
||||
### 🚨 Conflation Point: The Leaky Domain Model
|
||||
**The Smell:** A microservice publishes an event to a global Kafka topic, and the payload contains internal database IDs, complex nested objects, or serialized language-specific data types (like Java/C# specific enums).
|
||||
**Why it’s bad:** Downstream services are now strictly coupled to the internal data structure of the upstream service.
|
||||
**The Fix:** Implement an Anti-Corruption Layer. The producing service should catch its own Domain Event, map the data to a simplified, standardized, versioned Integration Event, and publish *that* to the wider system.
|
||||
|
||||
---
|
||||
|
||||
## Code Review CLI Prompt: "The Conflation Detector"
|
||||
*(Note: Feed the following heuristics to your AI CLI alongside this article to review your codebase).*
|
||||
|
||||
**AI CLI Instructions:** Scan the provided codebase for Event-Driven Architecture anti-patterns. Flag code that violates the conceptual boundaries described in the article. Look specifically for:
|
||||
1. **Shared Event Stores:** Are multiple distinct microservices connecting to the same EventStoreDB or reading the exact same raw Event Sourcing stream?
|
||||
2. **Boomerang Callbacks:** Is an event consumer receiving a message from a broker (RabbitMQ/Kafka/Azure Service Bus), extracting an ID, and immediately making an HTTP request to the service that originated the event?
|
||||
3. **Leaky Domain Models:** Are internal entity objects (e.g., classes mapped directly to ORMs like Entity Framework or Hibernate) being serialized directly into event payloads sent to external message brokers?
|
||||
4. **Misused CDC:** Are Debezium/database-trigger events being used to trigger business logic workflows, rather than simply updating read-models/caches?
|
||||
5. **Fat Notification Trap:** Are Notification events carrying massive payloads just to trigger an email, when a thin event would suffice? Or conversely, are thin events starving consumers of necessary data?
|
||||
Reference in New Issue
Block a user